But, visitors to the fake Facebook website who attempt to sign-in, will cause their Facebook account credentials (usernames and passwords) to be sent to the same cyber-criminals who have created the fake email message and website. The cyber-criminals will then use the stolen credentials to gain access their victims’ Facebook accounts and use the accounts fraudulently. They will use the Facebook accounts to sent fake messages with links to malicious and phishing websites to the victims' Facebook friends.
The Phishing "Facebook Account Limitation" Email Message
-----Original Message-----
From: Facebook mamonn@t-online.de
Sent: Sun, Mar 5, 2017 10:47 am
Subject: Facebook Account Limitation! (Do Not Ignore)
Facebook
Hi,
Some of your Facebook account details are not up to date we have limited your activities. Update your Facebook account details for upgrade today.
Update your account now
Failure to complete the update before April 10, 2017 might lead to temporary suspension of your account.
Thanks,
The Facebook Security Team
Facebook users should always go directly to www.facebook.com to sign into their accounts or use Facebook mobile app, when they receive email notifications, instead of clicking on the links in the same email notification. Once they have signed in, they will be notified of changes or updates. Doing this will prevent Facebook users from becoming victims of phishing scams.
Facebook users, who were tricked by the phishing email messages, should change their passwords immediately, before their accounts are hijacked or use fraudulently. And, if they are unable to gain access to their accounts because they have hijacked, they may click here to recover their accounts.